SuccessFactors
Platform Engineering Lead
At SAP, we keep it simple: you bring your best to us, and we'll bring out the best in you. We're builders touching over 20 industries and 80% of global commerce, and we need your unique talents to help shape what's next. The work is challenging but it matters. You'll find a place where you can be yourself, prioritize your wellbeing, and truly belong. What's in it for you? Constant learning, skill growth, great benefits, and a team that wants you to grow and succeed. SAP is the global market leader for business software and related services, and SAP National Security Services Inc. (SAP NS2) is an independent U.S. subsidiary, offering SAP solutions with specialized levels of security and support to meet the requirements of U.S. national security and critical infrastructure customers. Must be a US Citizen; this position requires access to customer data. All internals must have Manager's approval to transfer. Candidates must be within a commutable distance to Austin, TX with the expectation to be in office a minimum of 3-4 days per week. Role Overview
A Platform Engineering Lead specializing in developer tools, SBOM, software scanning, GitLab, Kubernetes, JFrog, and software attestation is responsible for designing, building, and securing developer platforms that automate and enhance the software supply chain. The focus is on embedding compliance and security features into every part of the developer workflow, while supporting developer productivity through modern tooling and automation. Core Responsibilities
Architect and scale internal developer platforms (IDPs) Build and operate IDPs leveraging tools such as GitLab for CI/CD automation, Kubernetes for orchestration, and JFrog Artifactory for artifact management. Embed supply chain compliance Integrate software bill of materials (SBOM) management, vulnerability scanning, and attestation tooling into the pipeline for continuous compliance and supply chain security. Automate infrastructure provisioning Design and automate infrastructure with tools like Terraform or Ansible, ensuring efficient, repeatable, and secure code deployments. Implement attestation and SLSA compliance Establish workflows for software attestation, artifact provenance, and Supply Chain Levels for Software Artifacts (SLSA) compliance within cloud-native pipelines. Monitor and improve platform health Oversee platform performance, security and stability; optimize environments to support high availability and continuous improvement. Job Description Highlights
Collaborate with security and DevOps teams Enforce CI/CD best practices for software supply-chain security, including SBOM generation and artifact attestation. Own developer tools lifecycle Design, implement, and manage developer-facing tools, ensuring ongoing support and incorporating new features. Lead automated scanning and SBOM workflows Maintain compliance with industry standards and promote secure software development practices across teams. Drive platform roadmap Work cross-functionally to define the platform's evolution for developer enablement, cloud modernization, and compliance automation. Evaluate new tools and technologies Stay current with emerging tools (e.g. Kubernetes Operators, OpenTelemetry, SLSA, SonarQube) to improve developer productivity and software verification. Essential Skills & Qualifications
Technical expertise Deep experience with GitLab (CI/CD pipeline automation), Kubernetes, JFrog Artifactory, and similar developer platforms. Proficiency in SBOM generation, software scanning/attestation, secure artifact management, and supply chain security frameworks (e.g. SLSA). Automation background Demonstrated skill in automating infrastructure provisioning using Terraform, Ansible, or comparable tools. Leadership Ability to lead and mentor technical teams, drive cross-functional alignment, and champion security and compliance outcomes in platform engineering. Cloud-native knowledge Understanding of cloud-native architectures and experience with multi-cloud environments (AWS, Azure, GCP). Communication Strong communication and collaboration skills to align stakeholders and lead platform initiatives Bachelor's degree in Computer Science or equivalent practical experience.
At SAP, we keep it simple: you bring your best to us, and we'll bring out the best in you. We're builders touching over 20 industries and 80% of global commerce, and we need your unique talents to help shape what's next. The work is challenging but it matters. You'll find a place where you can be yourself, prioritize your wellbeing, and truly belong. What's in it for you? Constant learning, skill growth, great benefits, and a team that wants you to grow and succeed. SAP is the global market leader for business software and related services, and SAP National Security Services Inc. (SAP NS2) is an independent U.S. subsidiary, offering SAP solutions with specialized levels of security and support to meet the requirements of U.S. national security and critical infrastructure customers. Must be a US Citizen; this position requires access to customer data. All internals must have Manager's approval to transfer. Candidates must be within a commutable distance to Austin, TX with the expectation to be in office a minimum of 3-4 days per week. Role Overview
A Platform Engineering Lead specializing in developer tools, SBOM, software scanning, GitLab, Kubernetes, JFrog, and software attestation is responsible for designing, building, and securing developer platforms that automate and enhance the software supply chain. The focus is on embedding compliance and security features into every part of the developer workflow, while supporting developer productivity through modern tooling and automation. Core Responsibilities
Architect and scale internal developer platforms (IDPs) Build and operate IDPs leveraging tools such as GitLab for CI/CD automation, Kubernetes for orchestration, and JFrog Artifactory for artifact management. Embed supply chain compliance Integrate software bill of materials (SBOM) management, vulnerability scanning, and attestation tooling into the pipeline for continuous compliance and supply chain security. Automate infrastructure provisioning Design and automate infrastructure with tools like Terraform or Ansible, ensuring efficient, repeatable, and secure code deployments. Implement attestation and SLSA compliance Establish workflows for software attestation, artifact provenance, and Supply Chain Levels for Software Artifacts (SLSA) compliance within cloud-native pipelines. Monitor and improve platform health Oversee platform performance, security and stability; optimize environments to support high availability and continuous improvement. Job Description Highlights
Collaborate with security and DevOps teams Enforce CI/CD best practices for software supply-chain security, including SBOM generation and artifact attestation. Own developer tools lifecycle Design, implement, and manage developer-facing tools, ensuring ongoing support and incorporating new features. Lead automated scanning and SBOM workflows Maintain compliance with industry standards and promote secure software development practices across teams. Drive platform roadmap Work cross-functionally to define the platform's evolution for developer enablement, cloud modernization, and compliance automation. Evaluate new tools and technologies Stay current with emerging tools (e.g. Kubernetes Operators, OpenTelemetry, SLSA, SonarQube) to improve developer productivity and software verification. Essential Skills & Qualifications
Technical expertise Deep experience with GitLab (CI/CD pipeline automation), Kubernetes, JFrog Artifactory, and similar developer platforms. Proficiency in SBOM generation, software scanning/attestation, secure artifact management, and supply chain security frameworks (e.g. SLSA). Automation background Demonstrated skill in automating infrastructure provisioning using Terraform, Ansible, or comparable tools. Leadership Ability to lead and mentor technical teams, drive cross-functional alignment, and champion security and compliance outcomes in platform engineering. Cloud-native knowledge Understanding of cloud-native architectures and experience with multi-cloud environments (AWS, Azure, GCP). Communication Strong communication and collaboration skills to align stakeholders and lead platform initiatives Bachelor's degree in Computer Science or equivalent practical experience.